Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231111	6.9	警告	シトリックス・システムズ Xen プロジェクト	-	Xen の XENMEM_exchange ハンドラにおけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-5513	2012-12-14 16:18	2012-12-3	Show	GitHub Exploit DB Packet Storm

231112	3	注意	シトリックス・システムズ Xen プロジェクト	-	Xen の HVMOP_set_mem_access ハンドラにおけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-16 環境設定	CVE-2012-5512	2012-12-14 16:17	2012-12-3	Show	GitHub Exploit DB Packet Storm

231113	4.7	警告	シトリックス・システムズ Xen プロジェクト	-	Xen の VRAM 汚染トラッキング機能におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5511	2012-12-14 16:15	2012-12-3	Show	GitHub Exploit DB Packet Storm

231114	4.7	警告	シトリックス・システムズ Xen プロジェクト	-	Xen におけるサービス運用妨害 (ハイパーバイザのクラッシュ) の脆弱性	CWE-DesignError	CVE-2012-5510	2012-12-14 16:12	2012-12-3	Show	GitHub Exploit DB Packet Storm

231115	4.4	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (CPU 資源の消費およびホストハング) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3131	2012-12-14 16:03	2011-08-12	Show	GitHub Exploit DB Packet Storm

231116	6.5	警告	Centreon	-	Centreon にブラインド SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-5967	2012-12-14 15:59	2012-12-13	Show	GitHub Exploit DB Packet Storm

231117	6.8	警告	D-Link Systems, Inc.	-	D-Link DSL-2730u に OS コマンドインジェクションの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5966	2012-12-14 15:49	2012-12-13	Show	GitHub Exploit DB Packet Storm

231118	4.3	警告	ForeScout Technologies	-	Forescout CounterACT NAC デバイスにおけるARP ポイズニング攻撃が実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4985	2012-12-14 15:37	2012-12-5	Show	GitHub Exploit DB Packet Storm

231119	6.8	警告	シスコシステムズ	-	64-bit Linux プラットフォーム上の Cisco AnyConnect Secure Mobility Client における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2496	2012-12-14 14:53	2012-06-20	Show	GitHub Exploit DB Packet Storm

231120	4.3	警告	シスコシステムズ	-	Cisco AnyConnect Secure Mobility Client および Cisco Secure Desktop におけるダウングレードを強制される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2495	2012-12-14 14:50	2012-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292541	-	cybozu	kunai	The WebView class in the Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application th…	CWE-200 Information Exposure	CVE-2012-4012	2024-11-21 10:42	2012-09-8	Show	GitHub Exploit DB Packet Storm

292542	-	cybozu	kunai	The Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.	CWE-78 OS Command	CVE-2012-4011	2024-11-21 10:42	2012-09-8	Show	GitHub Exploit DB Packet Storm

292543	-	php canonical debian	php ubuntu_linux debian_linux	The sapi_header_op function in main/SAPI.c in PHP 5.4.0RC2 through 5.4.0 does not properly determine a pointer during checks for %0D sequences (aka carriage return characters), which allows remote at…	CWE-20 Improper Input Validation	CVE-2012-4388	2024-11-21 10:42	2012-09-8	Show	GitHub Exploit DB Packet Storm

292544	-	owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) calendar displayname to part.choosecalendar.rowf…	CWE-79 Cross-site Scripting	CVE-2012-4397	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm

292545	-	owncloud	owncloud	Cross-site scripting (XSS) vulnerability in index.php in ownCloud before 4.0.3 allows remote attackers to inject arbitrary web script or HTML via the redirect_url parameter.	CWE-79 Cross-site Scripting	CVE-2012-4395	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm

292546	-	owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) file names to apps/user_ldap/settings.php; (2) u…	CWE-79 Cross-site Scripting	CVE-2012-4396	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm

292547	-	owncloud	owncloud	Cross-site scripting (XSS) vulnerability in apps/files/js/filelist.js in ownCloud before 4.0.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter.	CWE-79 Cross-site Scripting	CVE-2012-4394	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm

292548	-	owncloud	owncloud	Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud before 4.0.6 allow remote attackers to hijack the authentication of arbitrary users for requests that use (1) addBookmark.php, (…	CWE-352 Origin Validation Error	CVE-2012-4393	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm

292549	-	owncloud	owncloud	index.php in ownCloud 4.0.7 does not properly validate the oc_token cookie, which allows remote attackers to bypass authentication via a crafted oc_token cookie value.	CWE-287 Improper Authentication	CVE-2012-4392	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm

292550	-	owncloud	owncloud	Cross-site request forgery (CSRF) vulnerability in core/ajax/appconfig.php in ownCloud before 4.0.7 allows remote attackers to hijack the authentication of administrators for requests that edit the a…	CWE-352 Origin Validation Error	CVE-2012-4391	2024-11-21 10:42	2012-09-6	Show	GitHub Exploit DB Packet Storm